https://community.sap.com/t5/application-development-and-automation-discussions/ssf-encryption-issue/m-p/10673262#M1868274 <HTML><HEAD></HEAD><BODY><P>Hi All,</P><P></P><P>Our project is using web service as an interface between .NET application and SAP to send data(only from .NET to SAP). Application is encrypting sensitive data from .NET and sending to SAP over webservice.</P><P></P><P><SPAN style="text-decoration: underline;">Implementation Details:</SPAN>&nbsp; .NET is using public key provided by SAP to encrypt data and, SAP decrypts data with private key using SSF mode decryption (Method: SSF_KRN_DEVELOPE, Algorithm:&nbsp; AES-256CBC decryption). Provided public key to .NET (Geo-Trust signed) in the form of X509 certificate and SAP maintains the private key in their server.</P><P></P><P><SPAN style="text-decoration: underline;">Data Level Encryption:</SPAN> We are using Certificate shared by SAP uses RSA (2048 bit) and method is AES-256 CBC algorithm and hash algorithm. From .NET we have used 'RSACryptoServiceProvider' and 'AESManaged' algorithms to encrypt but SAP is unable to decrypt in the actual data.</P><P></P><P>Is there any method in .NET for the corresponding SSF_KRN_DEVELOPE SAP method?</P><P></P><P></P><P>Regards, Depp</P></BODY></HTML> Mon, 10 Nov 2014 13:51:21 GMT Former Member 2014-11-10T13:51:21Z https://community.sap.com/t5/application-development-and-automation-discussions/ssf-encryption-issue/m-p/10673262#M1868274 <HTML><HEAD></HEAD><BODY><P>Hi All,</P><P></P><P>Our project is using web service as an interface between .NET application and SAP to send data(only from .NET to SAP). Application is encrypting sensitive data from .NET and sending to SAP over webservice.</P><P></P><P><SPAN style="text-decoration: underline;">Implementation Details:</SPAN>&nbsp; .NET is using public key provided by SAP to encrypt data and, SAP decrypts data with private key using SSF mode decryption (Method: SSF_KRN_DEVELOPE, Algorithm:&nbsp; AES-256CBC decryption). Provided public key to .NET (Geo-Trust signed) in the form of X509 certificate and SAP maintains the private key in their server.</P><P></P><P><SPAN style="text-decoration: underline;">Data Level Encryption:</SPAN> We are using Certificate shared by SAP uses RSA (2048 bit) and method is AES-256 CBC algorithm and hash algorithm. From .NET we have used 'RSACryptoServiceProvider' and 'AESManaged' algorithms to encrypt but SAP is unable to decrypt in the actual data.</P><P></P><P>Is there any method in .NET for the corresponding SSF_KRN_DEVELOPE SAP method?</P><P></P><P></P><P>Regards, Depp</P></BODY></HTML> Mon, 10 Nov 2014 13:51:21 GMT https://community.sap.com/t5/application-development-and-automation-discussions/ssf-encryption-issue/m-p/10673262#M1868274 Former Member 2014-11-10T13:51:21Z https://community.sap.com/t5/application-development-and-automation-discussions/ssf-encryption-issue/m-p/10673263#M1868275 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>take a look at the report ZSSF_TEST_PSE mentioned in OSS <A href="http://service.sap.com/sap/support/notes/800240" title="800240 - FAQ: SAP Cryptographic Library error analysis (App. Server)"><SPAN class="title">800240&nbsp; - FAQ: SAP Cryptographic Library error analysis (App. Server</SPAN></A></P><P>and test the encryption there. I do not know any other FM which could be used for decrpytion in ECC,</P><P></P><P>Regards, Dominik</P></BODY></HTML> Mon, 10 Nov 2014 14:35:48 GMT https://community.sap.com/t5/application-development-and-automation-discussions/ssf-encryption-issue/m-p/10673263#M1868275 DominikKraemer 2014-11-10T14:35:48Z